Post navigation

CoreOS and Docker – Game-changers that security pros should know about

Key Takeaways: CoreOS and Docker will fundamentally change the way SaaS companies deliver software. CoreOS and Docker used together provide a compelling package by combining an “operating system as a service” and an application container to run applications in isolation from the operating system. Security professionals should know that the introduction of these technologies will mitigate some traditional risks while creating others.
CoreOS in particular is interesting in the way that it handles operating system updates and patches using an active/passive partition scheme. More information here.

The ability to sanely roll operating system updates into deployment lifecycle will solve a major pain point for SaaS operations. The dirty little secret that is while many agile shops are starting to push code out “continuously”, operating systems are often left either untouched or unpatched.

CoreOS will help make “infrastructure as code” less buzzword and more reality in the not too distant future.

Your email address will not be published. Required fields are marked *

Comment

Name *

Email *

Website

Notify me of follow-up comments by email.

Notify me of new posts by email.

Search

Why Cloud Insanity?

If software is eating the world, then the cloud must be its digestive system. Those of us that work “in the cloud" know what a messy job it can be.

We are riding an unprecedented wave of technological innovation that is both awesome and terrifying. Rapid change, incessant unrelenting noise and the need to transform organizations seemingly overnight makes sanity a stretch goal, at best.

Writing about it helps me. I hope it can help you in some small way as well.

Stuart Clark

Stuart Clark

Stuart is a security strategist, consultant, and entrepreneur. His 25 years of converged security experience span a diverse spectrum of law enforcement, venture backed startups, and high growth multi-billion dollar financial services firms.

He has served in the role of Reluctant CISO for the last 15 years. He is not particularly fond of the role but gains great satisfaction when his efforts results in measurable improvements to the security and overall maturity of organizations.

As a commissioned Texas Peace Officer and CISO (Chief Information Security Officer) Stuart is uniquely positioned to serve as a bridge between law enforcement, technologists and the public. He writes and speaks frequently on technology, law enforcement, and cybersecurity topics.